Analysts React to Zappos Breach Response

PCWorld reports on Zappos' response to its recent breach affecting 24 million customers. The online shoe retailer notified affected customers via e-mail and has asked them to change passwords after discovering a hacker had gained unauthorized access to company servers containing names, e-mail addresses and billing addresses. But some analysts say that the company's response was the wrong one, and that deleting 24 million customer passwords makes the company look like it's in panic mode. Another expert and Zappos customer, however, says data encryption should have been more broadly applied because the "definition of what is sensitive is changing. It's not just card numbers anymore..." Full Story

Comments

Related Stories

Each year, the HPE-IAPP Privacy Innovation Awards recognize unique programs and services in global privacy and data protection in the private and public sectors. Two honors are awarded: one for privacy operations and one for privacy technology. This year's privacy operations awards winner goes to Te...

In this week’s Privacy Tracker legislative roundup, read about a new plan in Australia that would see state and territory leaders handing over citizens’ data to the federal government. There’s also a matchup between Australia’s Privacy Act and the EU General Data Protection Act. In India, the health...

The U.S. Supreme Court has agreed to hear the continuing Microsoft v. U.S. case, USA Today reports. The case, involving whether Microsoft must turn over emails located on servers in Ireland, has gone back and forth, with a U.S. district judge initially telling the tech company to turn over the email...

In response to Equifax’s data breach, congressional Republicans have introduced a bill requiring the three major credit firms to submit regular cybersecurity reviews for the first time, The Wall Street Journal reports. The bill would have Equifax, Experian and TransUnion phase out their use of Socia...

The Financial Times reports U.S. banks are bolstering their anti-fraud measures following the Equifax data breach. Citigroup and Wells Fargo executives said customers will face new checks as a result of the increased risk of identity fraud facing the affected individuals. “You’ve got to put on some ...

The IAPP is the largest and most comprehensive global information privacy community and resource. Founded in 2000, the IAPP is a not-for-profit organization that helps define, support and improve the privacy profession globally.

The IAPP is the only place you’ll find a comprehensive body of resources, knowledge and experts to help you navigate the complex landscape of today’s data-driven world. We offer individual, corporate and group memberships, and all members have access to an extensive array of benefits.